Achieve the ISO 27001 Information Security Standard

Since 2006, Hytec has been a member of the British Standards Institution (BSI) Associate Consultant Programme (ACP). As a certification body, BSI Management Systems is unable to provide consultancy services and recognises specialist consultancies such as Hytec who are able to carry out such work. ISO 27001 is an information security management system that can be gained to demonstrate your company's commitment to protecting data and corporate information. ISO 27001 compliance can allow your business to expand into new markets thanks to an enhanced reputation, and certification that proves your organisation has been independently assessed, and verified in having effective information security controls in place.

ISO 27001 focuses on protecting data, its confidentiality, and availability of the information in a company. Becoming ISO 27001 compliant demonstrates that your business has systems and controls in place in order to manage risks and threats. Every security incident costs money, so the main aim of ISO 27001 is to prevent incidents, in turn saving costs for your business.

Our consultants are ISO 27001 Lead Auditor experts and have considerable experience in assisting organisations to achieve the ISO 27001 Information Security Standard.

✓Tailored offerings: Hytec offers ISO 27001 compliance services tailored to the needs of each client from a full service offering to an advisory one based on your organisation's requirements. We have found many clients that have highly capable internal teams ready to do the majority of the ISO 27001 discovery and implementation work associated with a project. Our role in these scenarios is to be ISO 27001 auditors and leaders rather than implementers. This reduces costs for the client and creates an awareness that the ISO 27001 standard is the client’s own system rather than something that has been imposed by an external body.

What our customers say

"With the national focus on GDPR compliance for personal data confidentiality and the need for thorough system and process security, we are delighted to have achieved ISO27001 accreditation with the invaluable help of Hytec. Hytec’s Consultancy helped us formalise our existing processes against ISO standards, provided advice on writing policies and procedures, and assisted with incident and risk management for our full ISMS (Information Security Management System). Their advice was informative and very professional, and proved especially useful during the audit process. We now have the tools and knowledge to be self-sufficient in maintaining the accreditation."

Dedalus Healthcare

How Hytec will work with you

Evidence, maturity and gap analysis

We assess the evidence that exists in your organisation, and create a complete ISO 27001 Gap Analysis

Corrective actions advice and guidance

Hytec advises on corrective actions required to meet the gaps. Where compliance with other standards is also required (PCI DSS, NHS DSP Toolkit, PSN), we identify common controls and re-use.

Supporting you for successful Certification

At an appropriate stage, we would introduce a BSI Account Manager for certification. We would confirm the scope and approach with the ISO 27001 accreditor.